sb-eu logo
Story image

Trend Micro & Panasonic launch mission to advance connected car security

15 Feb 2018

Trend Micro and Panasonic are on a joint mission to thwart cyber risks that jeopardise connected car safety - they will develop a solution that can stop attacks on Electronic Control Units (ECUs).

ECUs control driving behaviour such as acceleration, steering and braking, as well as in-vehicle systems such as navigation, telematics and infotainment systems.

Hackers could potentially take control of steering and braking systems in connected cars – a threat that is ‘very real’, Trend Micro says.

Similar risks have been demonstrated by security researchers Chris Valasek and Charlie Miller. They were able to successfully conduct a remote hack against a 2014 Jeep Cherokee without any physical access to the vehicle.

Security vulnerabilities are discovered daily and pose risks that could result in remote exploitation, Trend Micro says.

In a blog posted in August 2017, Trend Micro senior threat researcher Federico Maggi notes that many car hacking proof-of-concepts are ignored because they require physical access to the car, but the Jeep case in particular shows that is not the case anymore. Maggi also says even local attacks should not be disregarded.

“Traditionally, the scenario in which an attacker could access a car that way is not only rare, but is also very risky to the attacker. This may have been true back then, but with current transportation trends such as ride-sharing, carpooling, and car renting, the scenario where many people can have local access to the same car is now more commonplace. As such, a paradigm shift in terms of vehicle cybersecurity must happen,” Maggi says.

Trend Micro and Panasonic will design a solution that can detect and prevent the intrusions into ECUs. Panasonic’s Control Area Network intrusion detection and prevention technology and Trend Micro’s IoT Security will form the base of the solutions.

Panasonic’s intrusion and detection will be able to detect any unauthorised commands to ECUs related to driving control. Trend Micro’s IoT Security will provide security intelligence and malware analysis on in-vehicle infotainment devices and navigation systems to detect attacks via the internet.

The partnership will also seek to jointly collect security events for analysis in the cloud. This will help detect and block suspicious traffic.

The companies hope to progress the overall development of cybersecurity solutions for autonomous and connected cars, particularly for in-vehicle and cloud systems.

“It is more important than ever to not only implement security measures in each vehicle but also to analyse new attacks by constantly monitoring in-vehicle systems from the cloud and utilise the results to implement countermeasures against cyber-attacks to all vehicles,” Trend Micro states.

Trend Micro and Panasonic hope to launch the security solution commercially after 2020.

Story image
Entrust acquires HyTrust, with aim to improve data encryption solutions
Entrust says the acquisition will bolster its effort to deliver data protection and compliance solutions to its customers, while accelerating their digital transformations.More
Story image
Hornetsecurity acquires Altaro, the latest in acquisition spree
The move is a culmination of a medley of acquisitions made by Hornetsecurity recently, following the January 2019 acquisition of Spamina, a Spanish cloud email security company, as well as EveryCloud, its British market partner, in early 2020.More
Story image
How the editorial team works at Techday: Our tips for you
Preparing your releases in a particular way will not only make our lives easier, but improve the chances of your lead being picked among the masses.More
Story image
Huawei: Corporates must focus on data minimisation and business continuity to mitigate data security challenges
"From a long-term sustainable point of view, organisations will need to adopt data minimisation and privacy by design and default."More
Story image
Check Point exposes Android malware vendor using dark net to rebrand products
Check Point security researchers have exposed an Android malware vendor using a marketer on the dark net to rebrand its products, with the intention of supercharging business and throwing off security vendors. More
Story image
Kaspersky discovers COVID-19 research related cyber threats
Kaspersky researchers have identified two APT incidents that targeted entities related to COVID-19 research - a Ministry of Health body and a pharmaceutical company. More